$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/8gc5rnvre74BB6GExXvq57qHWFQ.roa File: 8gc5rnvre74BB6GExXvq57qHWFQ.roa (raw, json) Hash identifier: x0M3WNjFTguMhqbVhQ0j/FqdY3fjLWQy/4cqxKXa/po= Subject key identifier: F2:07:39:AE:7B:EB:7B:BE:01:07:A1:84:C5:7B:EA:E7:BA:87:58:54 Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0C61 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/8gc5rnvre74BB6GExXvq57qHWFQ.roa Signing time: Fri 01 Sep 2023 10:20:37 +0000 ROA not before: Fri 01 Sep 2023 10:20:37 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24168 IP address blocks: 121.50.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3169 (0xc61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Sep 1 10:20:37 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F20739AE7BEB7BBE0107A184C57BEAE7BA875854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5d:65:de:e7:25:8c:40:23:36:a0:f1:df:b0: 57:b0:9c:91:66:4b:b6:64:79:b2:9c:26:b0:15:86: 97:dd:c8:f9:d1:5a:a7:fb:a3:7d:ea:61:50:fb:1f: 18:64:ae:54:74:56:b5:92:bb:9d:90:2b:9c:1c:49: 59:2e:81:93:da:f9:59:97:b9:9d:5f:d5:13:f3:3f: 27:15:71:94:48:da:53:9c:55:29:cd:8e:bb:a4:ae: 69:a4:4a:d2:85:50:e9:6d:0c:d2:bf:31:97:78:38: 35:33:bf:66:1c:b0:1f:d4:4b:bc:04:f9:97:f7:b4: 9c:09:19:d3:16:ed:d9:37:8e:63:ee:63:42:23:fd: c0:80:4c:fe:0b:8d:99:1c:f5:e1:67:8a:ff:df:b0: 5b:03:50:d9:f4:8c:2a:4d:01:17:5f:47:7a:f8:fa: 0d:e6:ad:db:b2:b1:7a:5b:b2:7b:4c:24:2f:a4:38: 4a:ce:92:2f:8c:ca:67:88:4b:a2:a9:24:eb:9b:ff: 75:fb:9c:9b:cc:3b:6b:3f:b4:05:88:fa:b8:94:28: 43:90:66:f2:e8:58:fc:dc:83:c8:95:ce:9c:59:33: 53:4d:b5:e8:73:09:c2:59:f9:cd:1f:88:b6:6c:93: 13:dd:cb:52:e9:40:d5:11:01:7f:16:24:5c:76:ad: 69:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:07:39:AE:7B:EB:7B:BE:01:07:A1:84:C5:7B:EA:E7:BA:87:58:54 X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/8gc5rnvre74BB6GExXvq57qHWFQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.150.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:9c:a4:3e:0b:c7:0d:de:00:5f:0e:53:5a:63:f5:5a:3d:fe: 33:31:1a:6b:b2:16:ff:7c:97:02:23:de:28:41:f5:b1:b7:16: c7:a2:41:fc:40:80:8e:fb:44:a0:b5:63:c2:f8:40:ad:74:7e: 38:5d:f7:d9:d4:7b:ab:cf:fe:60:e1:12:82:fa:18:ae:52:76: 31:03:44:3e:92:da:6a:c9:e0:a1:3b:72:a7:b9:83:d2:cb:40: 2a:6b:3c:5e:59:70:97:5e:35:74:7e:1c:1b:5a:1b:4e:8e:24: 16:7b:48:d6:da:c0:11:f8:a4:b3:92:aa:40:06:6e:b1:c2:b0: c8:ae:f3:e3:20:12:9f:10:da:83:09:f2:fd:bf:63:df:b2:61: 0a:9a:2f:b3:48:0e:43:77:15:34:21:91:db:4a:7a:ae:3b:ad: 17:d0:80:b3:e1:1e:fb:f9:eb:82:d5:a1:d5:71:4e:0a:d0:d5: ac:89:b0:84:b8:d3:eb:80:cf:c5:c1:a6:ab:a2:b0:03:46:74: 57:a5:c4:77:7d:21:57:ed:68:3d:f9:16:c8:02:ff:1c:e1:e5: e8:68:39:32:73:75:19:09:22:00:4d:6f:df:ed:04:2b:8f:4f: f6:3d:cd:65:48:a1:52:17:32:dd:1c:eb:35:34:ed:7a:3a:8c: 0d:38:09:81 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDGEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMzA5MDEx MDIwMzdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEYyMDczOUFFN0JFQjdC QkUwMTA3QTE4NEM1N0JFQUU3QkE4NzU4NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTXWXe5yWMQCM2oPHfsFewnJFmS7ZkebKcJrAVhpfdyPnRWqf7 o33qYVD7HxhkrlR0VrWSu52QK5wcSVkugZPa+VmXuZ1f1RPzPycVcZRI2lOcVSnN jrukrmmkStKFUOltDNK/MZd4ODUzv2YcsB/US7wE+Zf3tJwJGdMW7dk3jmPuY0Ij /cCATP4LjZkc9eFniv/fsFsDUNn0jCpNARdfR3r4+g3mrduysXpbsntMJC+kOErO ki+MymeIS6KpJOub/3X7nJvMO2s/tAWI+riUKEOQZvLoWPzcg8iVzpxZM1NNtehz CcJZ+c0fiLZskxPdy1LpQNURAX8WJFx2rWnFAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU8gc5rnvre74BB6GExXvq57qHWFQwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOLzhnYzVybnZyZTc0 QkI2R0V4WHZxNTdxSFdGUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAB5MpYwDQYJKoZIhvcNAQELBQADggEBAB2cpD4Lxw3eAF8OU1pj9Vo9/jMx GmuyFv98lwIj3ihB9bG3FseiQfxAgI77RKC1Y8L4QK10fjhd99nUe6vP/mDhEoL6 GK5SdjEDRD6S2mrJ4KE7cqe5g9LLQCprPF5ZcJdeNXR+HBtaG06OJBZ7SNbawBH4 pLOSqkAGbrHCsMiu8+MgEp8Q2oMJ8v2/Y9+yYQqaL7NIDkN3FTQhkdtKeq47rRfQ gLPhHvv564LVodVxTgrQ1ayJsIS40+uAz8XBpquisANGdFelxHd9IVftaD35FsgC /xzh5ehoOTJzdRkJIgBNb9/tBCuPT/Y9zWVIoVIXMt0c6zU07Xo6jA04CYE= -----END CERTIFICATE-----Generated at Thu May 2 04:47:42 2024 by rpki-client on console-fra.rpki-client.org